Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Google redirect (yes, another one)


  • Please log in to reply
11 replies to this topic

#1 Twilink

Twilink

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 22 January 2012 - 10:31 AM

Hi! I'm new to the forum, so I don't know if I should have posted this on an existing topic...

Seems like I've contracted a Google redirect virus. Each time I search on Google on either Mozilla Firefox or Internet Explorer, I get redirected to other websites that have nothing to do with my search. I've tried scanning my computer with AVG and Kaspersky, they found nothing. I'm not sure of what I should do, any advice? Also, please tell me if you need more information.

(PS : I'm on Windows 7 64 bit)

BC AdBot (Login to Remove)

 


#2 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:30 AM

Posted 22 January 2012 - 10:39 AM

Download

TDSSkiller

Launch it Click on "Scan".Please post the LOG report


Download

aswMBR

Launch it, allow it to download latest Avast! virus definitions
Click the "Scan" button to start scan.After scan finishes,click on Save log

Post the log results here

Edited by narenxp, 22 January 2012 - 10:40 AM.


#3 Twilink

Twilink
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 22 January 2012 - 11:03 AM

TDSSkiller log (no threats found)

10:41:07.0631 4052 TDSS rootkit removing tool 2.7.6.0 Jan 19 2012 13:09:04
10:41:07.0875 4052 ============================================================
10:41:07.0875 4052 Current date / time: 2012/01/22 10:41:07.0875
10:41:07.0875 4052 SystemInfo:
10:41:07.0875 4052
10:41:07.0875 4052 OS Version: 6.1.7601 ServicePack: 1.0
10:41:07.0875 4052 Product type: Workstation
10:41:07.0875 4052 ComputerName: TWILINK-PC
10:41:07.0876 4052 UserName: Twilink
10:41:07.0876 4052 Windows directory: C:\Windows
10:41:07.0876 4052 System windows directory: C:\Windows
10:41:07.0876 4052 Running under WOW64
10:41:07.0876 4052 Processor architecture: Intel x64
10:41:07.0876 4052 Number of processors: 4
10:41:07.0876 4052 Page size: 0x1000
10:41:07.0876 4052 Boot type: Normal boot
10:41:07.0876 4052 ============================================================
10:41:08.0241 4052 Drive \Device\Harddisk0\DR0 - Size: 0xAEA8CDE000 (698.64 Gb), SectorSize: 0x200, Cylinders: 0x16441, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'K0', Flags 0x00000040
10:41:08.0247 4052 Drive \Device\Harddisk1\DR1 - Size: 0x1DDBF8000 (7.46 Gb), SectorSize: 0x200, Cylinders: 0x3CE, SectorsPerTrack: 0x3F, TracksPerCylinder: 0xFF, Type 'W'
10:41:08.0331 4052 Initialize success
10:41:15.0907 0776 ============================================================
10:41:15.0907 0776 Scan started
10:41:15.0907 0776 Mode: Manual;
10:41:15.0907 0776 ============================================================
10:41:17.0380 0776 1394ohci (a87d604aea360176311474c87a63bb88) C:\Windows\system32\drivers\1394ohci.sys
10:41:17.0382 0776 1394ohci - ok
10:41:17.0428 0776 ACPI (d81d9e70b8a6dd14d42d7b4efa65d5f2) C:\Windows\system32\drivers\ACPI.sys
10:41:17.0430 0776 ACPI - ok
10:41:17.0467 0776 AcpiPmi (99f8e788246d495ce3794d7e7821d2ca) C:\Windows\system32\drivers\acpipmi.sys
10:41:17.0468 0776 AcpiPmi - ok
10:41:17.0515 0776 adp94xx (2f6b34b83843f0c5118b63ac634f5bf4) C:\Windows\system32\DRIVERS\adp94xx.sys
10:41:17.0519 0776 adp94xx - ok
10:41:17.0558 0776 adpahci (597f78224ee9224ea1a13d6350ced962) C:\Windows\system32\DRIVERS\adpahci.sys
10:41:17.0561 0776 adpahci - ok
10:41:17.0579 0776 adpu320 (e109549c90f62fb570b9540c4b148e54) C:\Windows\system32\DRIVERS\adpu320.sys
10:41:17.0580 0776 adpu320 - ok
10:41:17.0654 0776 AFD (d5b031c308a409a0a576bff4cf083d30) C:\Windows\system32\drivers\afd.sys
10:41:17.0657 0776 AFD - ok
10:41:17.0695 0776 agp440 (608c14dba7299d8cb6ed035a68a15799) C:\Windows\system32\drivers\agp440.sys
10:41:17.0696 0776 agp440 - ok
10:41:17.0722 0776 aliide (5812713a477a3ad7363c7438ca2ee038) C:\Windows\system32\drivers\aliide.sys
10:41:17.0722 0776 aliide - ok
10:41:17.0750 0776 amdide (1ff8b4431c353ce385c875f194924c0c) C:\Windows\system32\drivers\amdide.sys
10:41:17.0752 0776 amdide - ok
10:41:17.0778 0776 AmdK8 (7024f087cff1833a806193ef9d22cda9) C:\Windows\system32\DRIVERS\amdk8.sys
10:41:17.0788 0776 AmdK8 - ok
10:41:17.0806 0776 AmdPPM (1e56388b3fe0d031c44144eb8c4d6217) C:\Windows\system32\DRIVERS\amdppm.sys
10:41:17.0807 0776 AmdPPM - ok
10:41:17.0841 0776 amdsata (d4121ae6d0c0e7e13aa221aa57ef2d49) C:\Windows\system32\drivers\amdsata.sys
10:41:17.0843 0776 amdsata - ok
10:41:17.0852 0776 amdsbs (f67f933e79241ed32ff46a4f29b5120b) C:\Windows\system32\DRIVERS\amdsbs.sys
10:41:17.0854 0776 amdsbs - ok
10:41:17.0899 0776 amdxata (540daf1cea6094886d72126fd7c33048) C:\Windows\system32\drivers\amdxata.sys
10:41:17.0899 0776 amdxata - ok
10:41:17.0936 0776 AppID (89a69c3f2f319b43379399547526d952) C:\Windows\system32\drivers\appid.sys
10:41:17.0937 0776 AppID - ok
10:41:17.0983 0776 arc (c484f8ceb1717c540242531db7845c4e) C:\Windows\system32\DRIVERS\arc.sys
10:41:17.0984 0776 arc - ok
10:41:18.0000 0776 arcsas (019af6924aefe7839f61c830227fe79c) C:\Windows\system32\DRIVERS\arcsas.sys
10:41:18.0001 0776 arcsas - ok
10:41:18.0028 0776 AsyncMac (769765ce2cc62867468cea93969b2242) C:\Windows\system32\DRIVERS\asyncmac.sys
10:41:18.0029 0776 AsyncMac - ok
10:41:18.0061 0776 atapi (02062c0b390b7729edc9e69c680a6f3c) C:\Windows\system32\drivers\atapi.sys
10:41:18.0062 0776 atapi - ok
10:41:18.0138 0776 AVGIDSDriver (e29ea1a0ec7ab9fa2dc7e75a03f12a4f) C:\Windows\system32\DRIVERS\AVGIDSDriver.Sys
10:41:18.0139 0776 AVGIDSDriver - ok
10:41:18.0241 0776 AVGIDSEH (f823d184b8e8ffb8da3ead45dbf5bd6a) C:\Windows\system32\DRIVERS\AVGIDSEH.Sys
10:41:18.0242 0776 AVGIDSEH - ok
10:41:18.0290 0776 AVGIDSFilter (ed2b25bd7fe35d1944211968842d30da) C:\Windows\system32\DRIVERS\AVGIDSFilter.Sys
10:41:18.0291 0776 AVGIDSFilter - ok
10:41:18.0356 0776 Avgldx64 (979cf8912449a10b987218bff80a1fa3) C:\Windows\system32\DRIVERS\avgldx64.sys
10:41:18.0358 0776 Avgldx64 - ok
10:41:18.0395 0776 Avgmfx64 (36b1a5843695766eac714daffc5b84d1) C:\Windows\system32\DRIVERS\avgmfx64.sys
10:41:18.0396 0776 Avgmfx64 - ok
10:41:18.0427 0776 Avgrkx64 (1102239fb724527f1febbbbccf6bf313) C:\Windows\system32\DRIVERS\avgrkx64.sys
10:41:18.0427 0776 Avgrkx64 - ok
10:41:18.0452 0776 Avgtdia (11f36d3ea82d9db9aa05a476a210551b) C:\Windows\system32\DRIVERS\avgtdia.sys
10:41:18.0454 0776 Avgtdia - ok
10:41:18.0500 0776 b06bdrv (3e5b191307609f7514148c6832bb0842) C:\Windows\system32\DRIVERS\bxvbda.sys
10:41:18.0503 0776 b06bdrv - ok
10:41:18.0544 0776 b57nd60a (b5ace6968304a3900eeb1ebfd9622df2) C:\Windows\system32\DRIVERS\b57nd60a.sys
10:41:18.0553 0776 b57nd60a - ok
10:41:18.0568 0776 Beep (16a47ce2decc9b099349a5f840654746) C:\Windows\system32\drivers\Beep.sys
10:41:18.0570 0776 Beep - ok
10:41:18.0594 0776 blbdrive (61583ee3c3a17003c4acd0475646b4d3) C:\Windows\system32\DRIVERS\blbdrive.sys
10:41:18.0601 0776 blbdrive - ok
10:41:18.0668 0776 bowser (6c02a83164f5cc0a262f4199f0871cf5) C:\Windows\system32\DRIVERS\bowser.sys
10:41:18.0670 0776 bowser - ok
10:41:18.0691 0776 BrFiltLo (f09eee9edc320b5e1501f749fde686c8) C:\Windows\system32\DRIVERS\BrFiltLo.sys
10:41:18.0697 0776 BrFiltLo - ok
10:41:18.0715 0776 BrFiltUp (b114d3098e9bdb8bea8b053685831be6) C:\Windows\system32\DRIVERS\BrFiltUp.sys
10:41:18.0720 0776 BrFiltUp - ok
10:41:18.0746 0776 Brserid (43bea8d483bf1870f018e2d02e06a5bd) C:\Windows\System32\Drivers\Brserid.sys
10:41:18.0754 0776 Brserid - ok
10:41:18.0768 0776 BrSerWdm (a6eca2151b08a09caceca35c07f05b42) C:\Windows\System32\Drivers\BrSerWdm.sys
10:41:18.0775 0776 BrSerWdm - ok
10:41:18.0785 0776 BrUsbMdm (b79968002c277e869cf38bd22cd61524) C:\Windows\System32\Drivers\BrUsbMdm.sys
10:41:18.0792 0776 BrUsbMdm - ok
10:41:18.0809 0776 BrUsbSer (a87528880231c54e75ea7a44943b38bf) C:\Windows\System32\Drivers\BrUsbSer.sys
10:41:18.0815 0776 BrUsbSer - ok
10:41:18.0834 0776 BTHMODEM (9da669f11d1f894ab4eb69bf546a42e8) C:\Windows\system32\DRIVERS\bthmodem.sys
10:41:18.0841 0776 BTHMODEM - ok
10:41:18.0861 0776 cdfs (b8bd2bb284668c84865658c77574381a) C:\Windows\system32\DRIVERS\cdfs.sys
10:41:18.0867 0776 cdfs - ok
10:41:18.0908 0776 cdrom (f036ce71586e93d94dab220d7bdf4416) C:\Windows\system32\DRIVERS\cdrom.sys
10:41:18.0915 0776 cdrom - ok
10:41:18.0932 0776 circlass (d7cd5c4e1b71fa62050515314cfb52cf) C:\Windows\system32\DRIVERS\circlass.sys
10:41:18.0938 0776 circlass - ok
10:41:18.0969 0776 CLFS (fe1ec06f2253f691fe36217c592a0206) C:\Windows\system32\CLFS.sys
10:41:18.0971 0776 CLFS - ok
10:41:19.0003 0776 CmBatt (0840155d0bddf1190f84a663c284bd33) C:\Windows\system32\DRIVERS\CmBatt.sys
10:41:19.0010 0776 CmBatt - ok
10:41:19.0041 0776 cmdide (e19d3f095812725d88f9001985b94edd) C:\Windows\system32\drivers\cmdide.sys
10:41:19.0042 0776 cmdide - ok
10:41:19.0083 0776 CNG (d5fea92400f12412b3922087c09da6a5) C:\Windows\system32\Drivers\cng.sys
10:41:19.0086 0776 CNG - ok
10:41:19.0101 0776 Compbatt (102de219c3f61415f964c88e9085ad14) C:\Windows\system32\DRIVERS\compbatt.sys
10:41:19.0102 0776 Compbatt - ok
10:41:19.0137 0776 CompositeBus (03edb043586cceba243d689bdda370a8) C:\Windows\system32\drivers\CompositeBus.sys
10:41:19.0144 0776 CompositeBus - ok
10:41:19.0166 0776 crcdisk (1c827878a998c18847245fe1f34ee597) C:\Windows\system32\DRIVERS\crcdisk.sys
10:41:19.0167 0776 crcdisk - ok
10:41:19.0212 0776 DfsC (9bb2ef44eaa163b29c4a4587887a0fe4) C:\Windows\system32\Drivers\dfsc.sys
10:41:19.0215 0776 DfsC - ok
10:41:19.0238 0776 discache (13096b05847ec78f0977f2c0f79e9ab3) C:\Windows\system32\drivers\discache.sys
10:41:19.0239 0776 discache - ok
10:41:19.0294 0776 Disk (9819eee8b5ea3784ec4af3b137a5244c) C:\Windows\system32\DRIVERS\disk.sys
10:41:19.0295 0776 Disk - ok
10:41:19.0331 0776 drmkaud (9b19f34400d24df84c858a421c205754) C:\Windows\system32\drivers\drmkaud.sys
10:41:19.0338 0776 drmkaud - ok
10:41:19.0368 0776 DXGKrnl (f5bee30450e18e6b83a5012c100616fd) C:\Windows\System32\drivers\dxgkrnl.sys
10:41:19.0373 0776 DXGKrnl - ok
10:41:19.0398 0776 e1yexpress (761b9edd97a021aa1922501b7a056635) C:\Windows\system32\DRIVERS\e1y62x64.sys
10:41:19.0400 0776 e1yexpress - ok
10:41:19.0472 0776 ebdrv (dc5d737f51be844d8c82c695eb17372f) C:\Windows\system32\DRIVERS\evbda.sys
10:41:19.0488 0776 ebdrv - ok
10:41:19.0536 0776 elxstor (0e5da5369a0fcaea12456dd852545184) C:\Windows\system32\DRIVERS\elxstor.sys
10:41:19.0539 0776 elxstor - ok
10:41:19.0572 0776 ErrDev (34a3c54752046e79a126e15c51db409b) C:\Windows\system32\drivers\errdev.sys
10:41:19.0579 0776 ErrDev - ok
10:41:19.0613 0776 exfat (a510c654ec00c1e9bdd91eeb3a59823b) C:\Windows\system32\drivers\exfat.sys
10:41:19.0616 0776 exfat - ok
10:41:19.0634 0776 fastfat (0adc83218b66a6db380c330836f3e36d) C:\Windows\system32\drivers\fastfat.sys
10:41:19.0637 0776 fastfat - ok
10:41:19.0666 0776 fdc (d765d19cd8ef61f650c384f62fac00ab) C:\Windows\system32\DRIVERS\fdc.sys
10:41:19.0672 0776 fdc - ok
10:41:19.0692 0776 FileInfo (655661be46b5f5f3fd454e2c3095b930) C:\Windows\system32\drivers\fileinfo.sys
10:41:19.0693 0776 FileInfo - ok
10:41:19.0710 0776 Filetrace (5f671ab5bc87eea04ec38a6cd5962a47) C:\Windows\system32\drivers\filetrace.sys
10:41:19.0712 0776 Filetrace - ok
10:41:19.0732 0776 flpydisk (c172a0f53008eaeb8ea33fe10e177af5) C:\Windows\system32\DRIVERS\flpydisk.sys
10:41:19.0738 0776 flpydisk - ok
10:41:19.0777 0776 FltMgr (da6b67270fd9db3697b20fce94950741) C:\Windows\system32\drivers\fltmgr.sys
10:41:19.0779 0776 FltMgr - ok
10:41:19.0795 0776 FsDepends (d43703496149971890703b4b1b723eac) C:\Windows\system32\drivers\FsDepends.sys
10:41:19.0797 0776 FsDepends - ok
10:41:19.0808 0776 Fs_Rec (e95ef8547de20cf0603557c0cf7a9462) C:\Windows\system32\drivers\Fs_Rec.sys
10:41:19.0809 0776 Fs_Rec - ok
10:41:19.0847 0776 fvevol (1f7b25b858fa27015169fe95e54108ed) C:\Windows\system32\DRIVERS\fvevol.sys
10:41:19.0849 0776 fvevol - ok
10:41:19.0863 0776 gagp30kx (8c778d335c9d272cfd3298ab02abe3b6) C:\Windows\system32\DRIVERS\gagp30kx.sys
10:41:19.0864 0776 gagp30kx - ok
10:41:19.0893 0776 GEARAspiWDM (e403aacf8c7bb11375122d2464560311) C:\Windows\system32\DRIVERS\GEARAspiWDM.sys
10:41:19.0894 0776 GEARAspiWDM - ok
10:41:19.0969 0776 hcw85cir (f2523ef6460fc42405b12248338ab2f0) C:\Windows\system32\drivers\hcw85cir.sys
10:41:19.0976 0776 hcw85cir - ok
10:41:20.0017 0776 HdAudAddService (975761c778e33cd22498059b91e7373a) C:\Windows\system32\drivers\HdAudio.sys
10:41:20.0026 0776 HdAudAddService - ok
10:41:20.0071 0776 HDAudBus (97bfed39b6b79eb12cddbfeed51f56bb) C:\Windows\system32\drivers\HDAudBus.sys
10:41:20.0072 0776 HDAudBus - ok
10:41:20.0088 0776 HidBatt (78e86380454a7b10a5eb255dc44a355f) C:\Windows\system32\DRIVERS\HidBatt.sys
10:41:20.0095 0776 HidBatt - ok
10:41:20.0109 0776 HidBth (7fd2a313f7afe5c4dab14798c48dd104) C:\Windows\system32\DRIVERS\hidbth.sys
10:41:20.0116 0776 HidBth - ok
10:41:20.0130 0776 HidIr (0a77d29f311b88cfae3b13f9c1a73825) C:\Windows\system32\DRIVERS\hidir.sys
10:41:20.0137 0776 HidIr - ok
10:41:20.0169 0776 HidUsb (9592090a7e2b61cd582b612b6df70536) C:\Windows\system32\drivers\hidusb.sys
10:41:20.0170 0776 HidUsb - ok
10:41:20.0203 0776 HpSAMD (39d2abcd392f3d8a6dce7b60ae7b8efc) C:\Windows\system32\drivers\HpSAMD.sys
10:41:20.0204 0776 HpSAMD - ok
10:41:20.0264 0776 HTTP (0ea7de1acb728dd5a369fd742d6eee28) C:\Windows\system32\drivers\HTTP.sys
10:41:20.0271 0776 HTTP - ok
10:41:20.0312 0776 hwpolicy (a5462bd6884960c9dc85ed49d34ff392) C:\Windows\system32\drivers\hwpolicy.sys
10:41:20.0313 0776 hwpolicy - ok
10:41:20.0357 0776 i8042prt (fa55c73d4affa7ee23ac4be53b4592d3) C:\Windows\system32\drivers\i8042prt.sys
10:41:20.0365 0776 i8042prt - ok
10:41:20.0395 0776 iaStor (1d004cb1da6323b1f55caef7f94b61d9) C:\Windows\system32\DRIVERS\iaStor.sys
10:41:20.0398 0776 iaStor - ok
10:41:20.0432 0776 iaStorV (aaaf44db3bd0b9d1fb6969b23ecc8366) C:\Windows\system32\drivers\iaStorV.sys
10:41:20.0435 0776 iaStorV - ok
10:41:20.0541 0776 igfx (a87261ef1546325b559374f5689cf5bc) C:\Windows\system32\DRIVERS\igdkmd64.sys
10:41:20.0635 0776 igfx - ok
10:41:20.0671 0776 iirsp (5c18831c61933628f5bb0ea2675b9d21) C:\Windows\system32\DRIVERS\iirsp.sys
10:41:20.0672 0776 iirsp - ok
10:41:20.0728 0776 IntcAzAudAddService (bc64b75e8e0a0b8982ab773483164e72) C:\Windows\system32\drivers\RTKVHD64.sys
10:41:20.0744 0776 IntcAzAudAddService - ok
10:41:20.0789 0776 intelide (f00f20e70c6ec3aa366910083a0518aa) C:\Windows\system32\drivers\intelide.sys
10:41:20.0790 0776 intelide - ok
10:41:20.0807 0776 intelppm (ada036632c664caa754079041cf1f8c1) C:\Windows\system32\DRIVERS\intelppm.sys
10:41:20.0808 0776 intelppm - ok
10:41:20.0849 0776 IpFilterDriver (c9f0e1bd74365a8771590e9008d22ab6) C:\Windows\system32\DRIVERS\ipfltdrv.sys
10:41:20.0857 0776 IpFilterDriver - ok
10:41:20.0896 0776 IPMIDRV (0fc1aea580957aa8817b8f305d18ca3a) C:\Windows\system32\drivers\IPMIDrv.sys
10:41:20.0904 0776 IPMIDRV - ok
10:41:20.0942 0776 IPNAT (af9b39a7e7b6caa203b3862582e9f2d0) C:\Windows\system32\drivers\ipnat.sys
10:41:20.0951 0776 IPNAT - ok
10:41:21.0001 0776 IRENUM (3abf5e7213eb28966d55d58b515d5ce9) C:\Windows\system32\drivers\irenum.sys
10:41:21.0008 0776 IRENUM - ok
10:41:21.0039 0776 isapnp (2f7b28dc3e1183e5eb418df55c204f38) C:\Windows\system32\drivers\isapnp.sys
10:41:21.0040 0776 isapnp - ok
10:41:21.0080 0776 iScsiPrt (d931d7309deb2317035b07c9f9e6b0bd) C:\Windows\system32\drivers\msiscsi.sys
10:41:21.0083 0776 iScsiPrt - ok
10:41:21.0123 0776 kbdclass (bc02336f1cba7dcc7d1213bb588a68a5) C:\Windows\system32\drivers\kbdclass.sys
10:41:21.0124 0776 kbdclass - ok
10:41:21.0154 0776 kbdhid (0705eff5b42a9db58548eec3b26bb484) C:\Windows\system32\drivers\kbdhid.sys
10:41:21.0155 0776 kbdhid - ok
10:41:21.0193 0776 KSecDD (ccd53b5bd33ce0c889e830d839c8b66e) C:\Windows\system32\Drivers\ksecdd.sys
10:41:21.0195 0776 KSecDD - ok
10:41:21.0228 0776 KSecPkg (9ff918a261752c12639e8ad4208d2c2f) C:\Windows\system32\Drivers\ksecpkg.sys
10:41:21.0229 0776 KSecPkg - ok
10:41:21.0257 0776 ksthunk (6869281e78cb31a43e969f06b57347c4) C:\Windows\system32\drivers\ksthunk.sys
10:41:21.0265 0776 ksthunk - ok
10:41:21.0298 0776 lltdio (1538831cf8ad2979a04c423779465827) C:\Windows\system32\DRIVERS\lltdio.sys
10:41:21.0299 0776 lltdio - ok
10:41:21.0338 0776 LSI_FC (1a93e54eb0ece102495a51266dcdb6a6) C:\Windows\system32\DRIVERS\lsi_fc.sys
10:41:21.0339 0776 LSI_FC - ok
10:41:21.0352 0776 LSI_SAS (1047184a9fdc8bdbff857175875ee810) C:\Windows\system32\DRIVERS\lsi_sas.sys
10:41:21.0353 0776 LSI_SAS - ok
10:41:21.0366 0776 LSI_SAS2 (30f5c0de1ee8b5bc9306c1f0e4a75f93) C:\Windows\system32\DRIVERS\lsi_sas2.sys
10:41:21.0367 0776 LSI_SAS2 - ok
10:41:21.0384 0776 LSI_SCSI (0504eacaff0d3c8aed161c4b0d369d4a) C:\Windows\system32\DRIVERS\lsi_scsi.sys
10:41:21.0385 0776 LSI_SCSI - ok
10:41:21.0408 0776 luafv (43d0f98e1d56ccddb0d5254cff7b356e) C:\Windows\system32\drivers\luafv.sys
10:41:21.0409 0776 luafv - ok
10:41:21.0427 0776 megasas (a55805f747c6edb6a9080d7c633bd0f4) C:\Windows\system32\DRIVERS\megasas.sys
10:41:21.0428 0776 megasas - ok
10:41:21.0447 0776 MegaSR (baf74ce0072480c3b6b7c13b2a94d6b3) C:\Windows\system32\DRIVERS\MegaSR.sys
10:41:21.0450 0776 MegaSR - ok
10:41:21.0470 0776 Modem (800ba92f7010378b09f9ed9270f07137) C:\Windows\system32\drivers\modem.sys
10:41:21.0477 0776 Modem - ok
10:41:21.0499 0776 monitor (b03d591dc7da45ece20b3b467e6aadaa) C:\Windows\system32\DRIVERS\monitor.sys
10:41:21.0500 0776 monitor - ok
10:41:21.0552 0776 mouclass (7d27ea49f3c1f687d357e77a470aea99) C:\Windows\system32\drivers\mouclass.sys
10:41:21.0553 0776 mouclass - ok
10:41:21.0575 0776 mouhid (d3bf052c40b0c4166d9fd86a4288c1e6) C:\Windows\system32\DRIVERS\mouhid.sys
10:41:21.0582 0776 mouhid - ok
10:41:21.0617 0776 mountmgr (32e7a3d591d671a6df2db515a5cbe0fa) C:\Windows\system32\drivers\mountmgr.sys
10:41:21.0618 0776 mountmgr - ok
10:41:21.0654 0776 mpio (a44b420d30bd56e145d6a2bc8768ec58) C:\Windows\system32\drivers\mpio.sys
10:41:21.0655 0776 mpio - ok
10:41:21.0675 0776 mpsdrv (6c38c9e45ae0ea2fa5e551f2ed5e978f) C:\Windows\system32\drivers\mpsdrv.sys
10:41:21.0677 0776 mpsdrv - ok
10:41:21.0717 0776 MRxDAV (dc722758b8261e1abafd31a3c0a66380) C:\Windows\system32\drivers\mrxdav.sys
10:41:21.0725 0776 MRxDAV - ok
10:41:21.0757 0776 mrxsmb (a5d9106a73dc88564c825d317cac68ac) C:\Windows\system32\DRIVERS\mrxsmb.sys
10:41:21.0759 0776 mrxsmb - ok
10:41:21.0795 0776 mrxsmb10 (d711b3c1d5f42c0c2415687be09fc163) C:\Windows\system32\DRIVERS\mrxsmb10.sys
10:41:21.0798 0776 mrxsmb10 - ok
10:41:21.0811 0776 mrxsmb20 (9423e9d355c8d303e76b8cfbd8a5c30c) C:\Windows\system32\DRIVERS\mrxsmb20.sys
10:41:21.0813 0776 mrxsmb20 - ok
10:41:21.0850 0776 msahci (c25f0bafa182cbca2dd3c851c2e75796) C:\Windows\system32\drivers\msahci.sys
10:41:21.0851 0776 msahci - ok
10:41:21.0888 0776 msdsm (db801a638d011b9633829eb6f663c900) C:\Windows\system32\drivers\msdsm.sys
10:41:21.0889 0776 msdsm - ok
10:41:21.0912 0776 Msfs (aa3fb40e17ce1388fa1bedab50ea8f96) C:\Windows\system32\drivers\Msfs.sys
10:41:21.0913 0776 Msfs - ok
10:41:21.0924 0776 mshidkmdf (f9d215a46a8b9753f61767fa72a20326) C:\Windows\System32\drivers\mshidkmdf.sys
10:41:21.0931 0776 mshidkmdf - ok
10:41:21.0967 0776 msisadrv (d916874bbd4f8b07bfb7fa9b3ccae29d) C:\Windows\system32\drivers\msisadrv.sys
10:41:21.0968 0776 msisadrv - ok
10:41:22.0004 0776 MSKSSRV (49ccf2c4fea34ffad8b1b59d49439366) C:\Windows\system32\drivers\MSKSSRV.sys
10:41:22.0010 0776 MSKSSRV - ok
10:41:22.0025 0776 MSPCLOCK (bdd71ace35a232104ddd349ee70e1ab3) C:\Windows\system32\drivers\MSPCLOCK.sys
10:41:22.0031 0776 MSPCLOCK - ok
10:41:22.0048 0776 MSPQM (4ed981241db27c3383d72092b618a1d0) C:\Windows\system32\drivers\MSPQM.sys
10:41:22.0054 0776 MSPQM - ok
10:41:22.0088 0776 MsRPC (759a9eeb0fa9ed79da1fb7d4ef78866d) C:\Windows\system32\drivers\MsRPC.sys
10:41:22.0092 0776 MsRPC - ok
10:41:22.0128 0776 mssmbios (0eed230e37515a0eaee3c2e1bc97b288) C:\Windows\system32\drivers\mssmbios.sys
10:41:22.0128 0776 mssmbios - ok
10:41:22.0144 0776 MSTEE (2e66f9ecb30b4221a318c92ac2250779) C:\Windows\system32\drivers\MSTEE.sys
10:41:22.0151 0776 MSTEE - ok
10:41:22.0171 0776 MTConfig (7ea404308934e675bffde8edf0757bcd) C:\Windows\system32\DRIVERS\MTConfig.sys
10:41:22.0178 0776 MTConfig - ok
10:41:22.0204 0776 Mup (f9a18612fd3526fe473c1bda678d61c8) C:\Windows\system32\Drivers\mup.sys
10:41:22.0205 0776 Mup - ok
10:41:22.0235 0776 mwlPSDFilter (6ffecc25b39dc7652a0cec0ada9db589) C:\Windows\system32\DRIVERS\mwlPSDFilter.sys
10:41:22.0235 0776 mwlPSDFilter - ok
10:41:22.0248 0776 mwlPSDNServ (0befe32ca56d6ee89d58175725596a85) C:\Windows\system32\DRIVERS\mwlPSDNServ.sys
10:41:22.0249 0776 mwlPSDNServ - ok
10:41:22.0266 0776 mwlPSDVDisk (d43bc633b8660463e446e28e14a51262) C:\Windows\system32\DRIVERS\mwlPSDVDisk.sys
10:41:22.0267 0776 mwlPSDVDisk - ok
10:41:22.0321 0776 NativeWifiP (1ea3749c4114db3e3161156ffffa6b33) C:\Windows\system32\DRIVERS\nwifi.sys
10:41:22.0325 0776 NativeWifiP - ok
10:41:22.0361 0776 NDIS (79b47fd40d9a817e932f9d26fac0a81c) C:\Windows\system32\drivers\ndis.sys
10:41:22.0367 0776 NDIS - ok
10:41:22.0384 0776 NdisCap (9f9a1f53aad7da4d6fef5bb73ab811ac) C:\Windows\system32\DRIVERS\ndiscap.sys
10:41:22.0391 0776 NdisCap - ok
10:41:22.0405 0776 NdisTapi (30639c932d9fef22b31268fe25a1b6e5) C:\Windows\system32\DRIVERS\ndistapi.sys
10:41:22.0412 0776 NdisTapi - ok
10:41:22.0450 0776 Ndisuio (136185f9fb2cc61e573e676aa5402356) C:\Windows\system32\DRIVERS\ndisuio.sys
10:41:22.0451 0776 Ndisuio - ok
10:41:22.0489 0776 NdisWan (53f7305169863f0a2bddc49e116c2e11) C:\Windows\system32\DRIVERS\ndiswan.sys
10:41:22.0498 0776 NdisWan - ok
10:41:22.0534 0776 NDProxy (015c0d8e0e0421b4cfd48cffe2825879) C:\Windows\system32\drivers\NDProxy.sys
10:41:22.0542 0776 NDProxy - ok
10:41:22.0570 0776 NetBIOS (86743d9f5d2b1048062b14b1d84501c4) C:\Windows\system32\DRIVERS\netbios.sys
10:41:22.0571 0776 NetBIOS - ok
10:41:22.0585 0776 NetBT (09594d1089c523423b32a4229263f068) C:\Windows\system32\DRIVERS\netbt.sys
10:41:22.0588 0776 NetBT - ok
10:41:22.0637 0776 nfrd960 (77889813be4d166cdab78ddba990da92) C:\Windows\system32\DRIVERS\nfrd960.sys
10:41:22.0638 0776 nfrd960 - ok
10:41:22.0658 0776 Npfs (1e4c4ab5c9b8dd13179bbdc75a2a01f7) C:\Windows\system32\drivers\Npfs.sys
10:41:22.0659 0776 Npfs - ok
10:41:22.0673 0776 nsiproxy (e7f5ae18af4168178a642a9247c63001) C:\Windows\system32\drivers\nsiproxy.sys
10:41:22.0674 0776 nsiproxy - ok
10:41:22.0733 0776 Ntfs (a2f74975097f52a00745f9637451fdd8) C:\Windows\system32\drivers\Ntfs.sys
10:41:22.0766 0776 Ntfs - ok
10:41:22.0793 0776 NTIDrvr (64ddd0dee976302f4bd93e5efcc2f013) C:\Windows\system32\drivers\NTIDrvr.sys
10:41:22.0794 0776 NTIDrvr - ok
10:41:22.0804 0776 Null (9899284589f75fa8724ff3d16aed75c1) C:\Windows\system32\drivers\Null.sys
10:41:22.0810 0776 Null - ok
10:41:22.0839 0776 NVHDA (ad37248bd442d41c9a896e53eb8a85ee) C:\Windows\system32\drivers\nvhda64v.sys
10:41:22.0841 0776 NVHDA - ok
10:41:23.0041 0776 nvlddmkm (aaf5559039e99d0cc22e25255f3dc06e) C:\Windows\system32\DRIVERS\nvlddmkm.sys
10:41:23.0106 0776 nvlddmkm - ok
10:41:23.0167 0776 nvraid (0a92cb65770442ed0dc44834632f66ad) C:\Windows\system32\drivers\nvraid.sys
10:41:23.0168 0776 nvraid - ok
10:41:23.0214 0776 nvstor (dab0e87525c10052bf65f06152f37e4a) C:\Windows\system32\drivers\nvstor.sys
10:41:23.0216 0776 nvstor - ok
10:41:23.0244 0776 nv_agp (270d7cd42d6e3979f6dd0146650f0e05) C:\Windows\system32\drivers\nv_agp.sys
10:41:23.0245 0776 nv_agp - ok
10:41:23.0281 0776 ohci1394 (3589478e4b22ce21b41fa1bfc0b8b8a0) C:\Windows\system32\drivers\ohci1394.sys
10:41:23.0289 0776 ohci1394 - ok
10:41:23.0336 0776 Parport (0086431c29c35be1dbc43f52cc273887) C:\Windows\system32\DRIVERS\parport.sys
10:41:23.0344 0776 Parport - ok
10:41:23.0380 0776 partmgr (871eadac56b0a4c6512bbe32753ccf79) C:\Windows\system32\drivers\partmgr.sys
10:41:23.0381 0776 partmgr - ok
10:41:23.0402 0776 pci (94575c0571d1462a0f70bde6bd6ee6b3) C:\Windows\system32\drivers\pci.sys
10:41:23.0404 0776 pci - ok
10:41:23.0418 0776 pciide (b5b8b5ef2e5cb34df8dcf8831e3534fa) C:\Windows\system32\drivers\pciide.sys
10:41:23.0419 0776 pciide - ok
10:41:23.0443 0776 pcmcia (b2e81d4e87ce48589f98cb8c05b01f2f) C:\Windows\system32\DRIVERS\pcmcia.sys
10:41:23.0445 0776 pcmcia - ok
10:41:23.0464 0776 pcw (d6b9c2e1a11a3a4b26a182ffef18f603) C:\Windows\system32\drivers\pcw.sys
10:41:23.0465 0776 pcw - ok
10:41:23.0491 0776 PEAUTH (68769c3356b3be5d1c732c97b9a80d6e) C:\Windows\system32\drivers\peauth.sys
10:41:23.0498 0776 PEAUTH - ok
10:41:23.0564 0776 PptpMiniport (f92a2c41117a11a00be01ca01a7fcde9) C:\Windows\system32\DRIVERS\raspptp.sys
10:41:23.0572 0776 PptpMiniport - ok
10:41:23.0606 0776 Processor (0d922e23c041efb1c3fac2a6f943c9bf) C:\Windows\system32\DRIVERS\processr.sys
10:41:23.0614 0776 Processor - ok
10:41:23.0660 0776 Psched (0557cf5a2556bd58e26384169d72438d) C:\Windows\system32\DRIVERS\pacer.sys
10:41:23.0662 0776 Psched - ok
10:41:23.0708 0776 ql2300 (a53a15a11ebfd21077463ee2c7afeef0) C:\Windows\system32\DRIVERS\ql2300.sys
10:41:23.0718 0776 ql2300 - ok
10:41:23.0747 0776 ql40xx (4f6d12b51de1aaeff7dc58c4d75423c8) C:\Windows\system32\DRIVERS\ql40xx.sys
10:41:23.0748 0776 ql40xx - ok
10:41:23.0768 0776 QWAVEdrv (76707bb36430888d9ce9d705398adb6c) C:\Windows\system32\drivers\qwavedrv.sys
10:41:23.0776 0776 QWAVEdrv - ok
10:41:23.0793 0776 RasAcd (5a0da8ad5762fa2d91678a8a01311704) C:\Windows\system32\DRIVERS\rasacd.sys
10:41:23.0799 0776 RasAcd - ok
10:41:23.0829 0776 RasAgileVpn (7ecff9b22276b73f43a99a15a6094e90) C:\Windows\system32\DRIVERS\AgileVpn.sys
10:41:23.0831 0776 RasAgileVpn - ok
10:41:23.0851 0776 Rasl2tp (471815800ae33e6f1c32fb1b97c490ca) C:\Windows\system32\DRIVERS\rasl2tp.sys
10:41:23.0860 0776 Rasl2tp - ok
10:41:23.0881 0776 RasPppoe (855c9b1cd4756c5e9a2aa58a15f58c25) C:\Windows\system32\DRIVERS\raspppoe.sys
10:41:23.0889 0776 RasPppoe - ok
10:41:23.0903 0776 RasSstp (e8b1e447b008d07ff47d016c2b0eeecb) C:\Windows\system32\DRIVERS\rassstp.sys
10:41:23.0911 0776 RasSstp - ok
10:41:23.0930 0776 rdbss (77f665941019a1594d887a74f301fa2f) C:\Windows\system32\DRIVERS\rdbss.sys
10:41:23.0934 0776 rdbss - ok
10:41:23.0953 0776 rdpbus (302da2a0539f2cf54d7c6cc30c1f2d8d) C:\Windows\system32\DRIVERS\rdpbus.sys
10:41:23.0959 0776 rdpbus - ok
10:41:23.0978 0776 RDPCDD (cea6cc257fc9b7715f1c2b4849286d24) C:\Windows\system32\DRIVERS\RDPCDD.sys
10:41:23.0979 0776 RDPCDD - ok
10:41:24.0011 0776 RDPENCDD (bb5971a4f00659529a5c44831af22365) C:\Windows\system32\drivers\rdpencdd.sys
10:41:24.0012 0776 RDPENCDD - ok
10:41:24.0026 0776 RDPREFMP (216f3fa57533d98e1f74ded70113177a) C:\Windows\system32\drivers\rdprefmp.sys
10:41:24.0026 0776 RDPREFMP - ok
10:41:24.0059 0776 RDPWD (15b66c206b5cb095bab980553f38ed23) C:\Windows\system32\drivers\RDPWD.sys
10:41:24.0069 0776 RDPWD - ok
10:41:24.0109 0776 rdyboost (34ed295fa0121c241bfef24764fc4520) C:\Windows\system32\drivers\rdyboost.sys
10:41:24.0111 0776 rdyboost - ok
10:41:24.0156 0776 rspndr (ddc86e4f8e7456261e637e3552e804ff) C:\Windows\system32\DRIVERS\rspndr.sys
10:41:24.0157 0776 rspndr - ok
10:41:24.0199 0776 rtl819xp (2362226743449c713e1cd3210595f9ab) C:\Windows\system32\DRIVERS\rtl819xp.sys
10:41:24.0210 0776 rtl819xp - ok
10:41:24.0226 0776 rtl819xpn64 (2362226743449c713e1cd3210595f9ab) C:\Windows\system32\DRIVERS\rtl819xp.sys
10:41:24.0230 0776 rtl819xpn64 - ok
10:41:24.0791 0776 sbp2port (ac03af3329579fffb455aa2daabbe22b) C:\Windows\system32\drivers\sbp2port.sys
10:41:24.0793 0776 sbp2port - ok
10:41:24.0832 0776 scfilter (253f38d0d7074c02ff8deb9836c97d2b) C:\Windows\system32\DRIVERS\scfilter.sys
10:41:24.0840 0776 scfilter - ok
10:41:24.0867 0776 secdrv (3ea8a16169c26afbeb544e0e48421186) C:\Windows\system32\drivers\secdrv.sys
10:41:24.0868 0776 secdrv - ok
10:41:24.0900 0776 Serenum (cb624c0035412af0debec78c41f5ca1b) C:\Windows\system32\DRIVERS\serenum.sys
10:41:24.0907 0776 Serenum - ok
10:41:24.0923 0776 Serial (c1d8e28b2c2adfaec4ba89e9fda69bd6) C:\Windows\system32\DRIVERS\serial.sys
10:41:24.0931 0776 Serial - ok
10:41:24.0945 0776 sermouse (1c545a7d0691cc4a027396535691c3e3) C:\Windows\system32\DRIVERS\sermouse.sys
10:41:24.0952 0776 sermouse - ok
10:41:24.0979 0776 sffdisk (a554811bcd09279536440c964ae35bbf) C:\Windows\system32\drivers\sffdisk.sys
10:41:24.0985 0776 sffdisk - ok
10:41:25.0001 0776 sffp_mmc (ff414f0baefeba59bc6c04b3db0b87bf) C:\Windows\system32\drivers\sffp_mmc.sys
10:41:25.0008 0776 sffp_mmc - ok
10:41:25.0020 0776 sffp_sd (dd85b78243a19b59f0637dcf284da63c) C:\Windows\system32\drivers\sffp_sd.sys
10:41:25.0027 0776 sffp_sd - ok
10:41:25.0043 0776 sfloppy (a9d601643a1647211a1ee2ec4e433ff4) C:\Windows\system32\DRIVERS\sfloppy.sys
10:41:25.0050 0776 sfloppy - ok
10:41:25.0081 0776 SiSRaid2 (843caf1e5fde1ffd5ff768f23a51e2e1) C:\Windows\system32\DRIVERS\SiSRaid2.sys
10:41:25.0083 0776 SiSRaid2 - ok
10:41:25.0101 0776 SiSRaid4 (6a6c106d42e9ffff8b9fcb4f754f6da4) C:\Windows\system32\DRIVERS\sisraid4.sys
10:41:25.0102 0776 SiSRaid4 - ok
10:41:25.0123 0776 Smb (548260a7b8654e024dc30bf8a7c5baa4) C:\Windows\system32\DRIVERS\smb.sys
10:41:25.0125 0776 Smb - ok
10:41:25.0146 0776 spldr (b9e31e5cacdfe584f34f730a677803f9) C:\Windows\system32\drivers\spldr.sys
10:41:25.0147 0776 spldr - ok
10:41:25.0192 0776 srv (441fba48bff01fdb9d5969ebc1838f0b) C:\Windows\system32\DRIVERS\srv.sys
10:41:25.0197 0776 srv - ok
10:41:25.0235 0776 srv2 (b4adebbf5e3677cce9651e0f01f7cc28) C:\Windows\system32\DRIVERS\srv2.sys
10:41:25.0240 0776 srv2 - ok
10:41:25.0257 0776 srvnet (27e461f0be5bff5fc737328f749538c3) C:\Windows\system32\DRIVERS\srvnet.sys
10:41:25.0259 0776 srvnet - ok
10:41:25.0289 0776 stexstor (f3817967ed533d08327dc73bc4d5542a) C:\Windows\system32\DRIVERS\stexstor.sys
10:41:25.0290 0776 stexstor - ok
10:41:25.0312 0776 swenum (d01ec09b6711a5f8e7e6564a4d0fbc90) C:\Windows\system32\drivers\swenum.sys
10:41:25.0313 0776 swenum - ok
10:41:25.0380 0776 Tcpip (fc62769e7bff2896035aeed399108162) C:\Windows\system32\drivers\tcpip.sys
10:41:25.0392 0776 Tcpip - ok
10:41:25.0437 0776 TCPIP6 (fc62769e7bff2896035aeed399108162) C:\Windows\system32\DRIVERS\tcpip.sys
10:41:25.0446 0776 TCPIP6 - ok
10:41:25.0495 0776 tcpipreg (df687e3d8836bfb04fcc0615bf15a519) C:\Windows\system32\drivers\tcpipreg.sys
10:41:25.0496 0776 tcpipreg - ok
10:41:25.0513 0776 TDPIPE (3371d21011695b16333a3934340c4e7c) C:\Windows\system32\drivers\tdpipe.sys
10:41:25.0520 0776 TDPIPE - ok
10:41:25.0533 0776 TDTCP (e4245bda3190a582d55ed09e137401a9) C:\Windows\system32\drivers\tdtcp.sys
10:41:25.0539 0776 TDTCP - ok
10:41:25.0574 0776 tdx (ddad5a7ab24d8b65f8d724f5c20fd806) C:\Windows\system32\DRIVERS\tdx.sys
10:41:25.0583 0776 tdx - ok
10:41:25.0618 0776 TermDD (561e7e1f06895d78de991e01dd0fb6e5) C:\Windows\system32\drivers\termdd.sys
10:41:25.0619 0776 TermDD - ok
10:41:25.0671 0776 tssecsrv (ce18b2cdfc837c99e5fae9ca6cba5d30) C:\Windows\system32\DRIVERS\tssecsrv.sys
10:41:25.0678 0776 tssecsrv - ok
10:41:25.0711 0776 TsUsbFlt (d11c783e3ef9a3c52c0ebe83cc5000e9) C:\Windows\system32\drivers\tsusbflt.sys
10:41:25.0719 0776 TsUsbFlt - ok
10:41:25.0761 0776 tunnel (3566a8daafa27af944f5d705eaa64894) C:\Windows\system32\DRIVERS\tunnel.sys
10:41:25.0770 0776 tunnel - ok
10:41:25.0821 0776 uagp35 (b4dd609bd7e282bfc683cec7eaaaad67) C:\Windows\system32\DRIVERS\uagp35.sys
10:41:25.0822 0776 uagp35 - ok
10:41:25.0840 0776 UBHelper (2e22c1fd397a5a9ffef55e9d1fc96c00) C:\Windows\system32\drivers\UBHelper.sys
10:41:25.0841 0776 UBHelper - ok
10:41:25.0880 0776 udfs (ff4232a1a64012baa1fd97c7b67df593) C:\Windows\system32\DRIVERS\udfs.sys
10:41:25.0891 0776 udfs - ok
10:41:25.0916 0776 uliagpkx (4bfe1bc28391222894cbf1e7d0e42320) C:\Windows\system32\drivers\uliagpkx.sys
10:41:25.0917 0776 uliagpkx - ok
10:41:25.0934 0776 umbus (dc54a574663a895c8763af0fa1ff7561) C:\Windows\system32\drivers\umbus.sys
10:41:25.0942 0776 umbus - ok
10:41:25.0955 0776 UmPass (b2e8e8cb557b156da5493bbddcc1474d) C:\Windows\system32\DRIVERS\umpass.sys
10:41:25.0962 0776 UmPass - ok
10:41:25.0999 0776 USBAAPL64 (f724b03c3dfaacf08d17d38bf3333583) C:\Windows\system32\Drivers\usbaapl64.sys
10:41:26.0008 0776 USBAAPL64 - ok
10:41:26.0031 0776 usbaudio (82e8f44688e6fac57b5b7c6fc7adbc2a) C:\Windows\system32\drivers\usbaudio.sys
10:41:26.0033 0776 usbaudio - ok
10:41:26.0053 0776 usbccgp (6f1a3157a1c89435352ceb543cdb359c) C:\Windows\system32\DRIVERS\usbccgp.sys
10:41:26.0055 0776 usbccgp - ok
10:41:26.0082 0776 usbcir (af0892a803fdda7492f595368e3b68e7) C:\Windows\system32\drivers\usbcir.sys
10:41:26.0090 0776 usbcir - ok
10:41:26.0108 0776 usbehci (c025055fe7b87701eb042095df1a2d7b) C:\Windows\system32\DRIVERS\usbehci.sys
10:41:26.0116 0776 usbehci - ok
10:41:26.0141 0776 usbhub (287c6c9410b111b68b52ca298f7b8c24) C:\Windows\system32\DRIVERS\usbhub.sys
10:41:26.0151 0776 usbhub - ok
10:41:26.0166 0776 usbohci (9840fc418b4cbd632d3d0a667a725c31) C:\Windows\system32\drivers\usbohci.sys
10:41:26.0167 0776 usbohci - ok
10:41:26.0188 0776 usbprint (73188f58fb384e75c4063d29413cee3d) C:\Windows\system32\DRIVERS\usbprint.sys
10:41:26.0189 0776 usbprint - ok
10:41:26.0223 0776 usbscan (aaa2513c8aed8b54b189fd0c6b1634c0) C:\Windows\system32\DRIVERS\usbscan.sys
10:41:26.0224 0776 usbscan - ok
10:41:26.0237 0776 USBSTOR (fed648b01349a3c8395a5169db5fb7d6) C:\Windows\system32\DRIVERS\USBSTOR.SYS
10:41:26.0239 0776 USBSTOR - ok
10:41:26.0247 0776 usbuhci (62069a34518bcf9c1fd9e74b3f6db7cd) C:\Windows\system32\DRIVERS\usbuhci.sys
10:41:26.0255 0776 usbuhci - ok
10:41:26.0285 0776 vdrvroot (c5c876ccfc083ff3b128f933823e87bd) C:\Windows\system32\drivers\vdrvroot.sys
10:41:26.0286 0776 vdrvroot - ok
10:41:26.0308 0776 vga (da4da3f5e02943c2dc8c6ed875de68dd) C:\Windows\system32\DRIVERS\vgapnp.sys
10:41:26.0315 0776 vga - ok
10:41:26.0323 0776 VgaSave (53e92a310193cb3c03bea963de7d9cfc) C:\Windows\System32\drivers\vga.sys
10:41:26.0330 0776 VgaSave - ok
10:41:26.0346 0776 vhdmp (2ce2df28c83aeaf30084e1b1eb253cbb) C:\Windows\system32\drivers\vhdmp.sys
10:41:26.0348 0776 vhdmp - ok
10:41:26.0361 0776 viaide (e5689d93ffe4e5d66c0178761240dd54) C:\Windows\system32\drivers\viaide.sys
10:41:26.0362 0776 viaide - ok
10:41:26.0382 0776 volmgr (d2aafd421940f640b407aefaaebd91b0) C:\Windows\system32\drivers\volmgr.sys
10:41:26.0383 0776 volmgr - ok
10:41:26.0419 0776 volmgrx (a255814907c89be58b79ef2f189b843b) C:\Windows\system32\drivers\volmgrx.sys
10:41:26.0422 0776 volmgrx - ok
10:41:26.0439 0776 volsnap (0d08d2f3b3ff84e433346669b5e0f639) C:\Windows\system32\drivers\volsnap.sys
10:41:26.0441 0776 volsnap - ok
10:41:26.0466 0776 vsmraid (5e2016ea6ebaca03c04feac5f330d997) C:\Windows\system32\DRIVERS\vsmraid.sys
10:41:26.0468 0776 vsmraid - ok
10:41:26.0491 0776 vwifibus (36d4720b72b5c5d9cb2b9c29e9df67a1) C:\Windows\system32\DRIVERS\vwifibus.sys
10:41:26.0499 0776 vwifibus - ok
10:41:26.0529 0776 vwififlt (6a3d66263414ff0d6fa754c646612f3f) C:\Windows\system32\DRIVERS\vwififlt.sys
10:41:26.0536 0776 vwififlt - ok
10:41:26.0550 0776 WacomPen (4e9440f4f152a7b944cb1663d3935a3e) C:\Windows\system32\DRIVERS\wacompen.sys
10:41:26.0557 0776 WacomPen - ok
10:41:26.0572 0776 WANARP (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:41:26.0579 0776 WANARP - ok
10:41:26.0584 0776 Wanarpv6 (356afd78a6ed4457169241ac3965230c) C:\Windows\system32\DRIVERS\wanarp.sys
10:41:26.0585 0776 Wanarpv6 - ok
10:41:26.0623 0776 Wd (72889e16ff12ba0f235467d6091b17dc) C:\Windows\system32\DRIVERS\wd.sys
10:41:26.0624 0776 Wd - ok
10:41:26.0649 0776 Wdf01000 (441bd2d7b4f98134c3a4f9fa570fd250) C:\Windows\system32\drivers\Wdf01000.sys
10:41:26.0654 0776 Wdf01000 - ok
10:41:26.0697 0776 WfpLwf (611b23304bf067451a9fdee01fbdd725) C:\Windows\system32\DRIVERS\wfplwf.sys
10:41:26.0703 0776 WfpLwf - ok
10:41:26.0717 0776 WIMMount (05ecaec3e4529a7153b3136ceb49f0ec) C:\Windows\system32\drivers\wimmount.sys
10:41:26.0718 0776 WIMMount - ok
10:41:26.0761 0776 WinUsb (fe88b288356e7b47b74b13372add906d) C:\Windows\system32\DRIVERS\WinUsb.sys
10:41:26.0768 0776 WinUsb - ok
10:41:26.0792 0776 WmiAcpi (f6ff8944478594d0e414d3f048f0d778) C:\Windows\system32\drivers\wmiacpi.sys
10:41:26.0793 0776 WmiAcpi - ok
10:41:26.0816 0776 ws2ifsl (6bcc1d7d2fd2453957c5479a32364e52) C:\Windows\system32\drivers\ws2ifsl.sys
10:41:26.0822 0776 ws2ifsl - ok
10:41:26.0863 0776 WudfPf (d3381dc54c34d79b22cee0d65ba91b7c) C:\Windows\system32\drivers\WudfPf.sys
10:41:26.0865 0776 WudfPf - ok
10:41:26.0882 0776 WUDFRd (cf8d590be3373029d57af80914190682) C:\Windows\system32\DRIVERS\WUDFRd.sys
10:41:26.0885 0776 WUDFRd - ok
10:41:26.0914 0776 MBR (0x1B8) (a36c5e4f47e84449ff07ed3517b43a31) \Device\Harddisk0\DR0
10:41:26.0969 0776 \Device\Harddisk0\DR0 - ok
10:41:26.0974 0776 MBR (0x1B8) (ddae9d649db12f6aff24483f2c298989) \Device\Harddisk1\DR1
10:41:26.0978 0776 \Device\Harddisk1\DR1 - ok
10:41:26.0986 0776 Boot (0x1200) (623325f30f5e4d0dfec4f2ae08d97b2e) \Device\Harddisk0\DR0\Partition0
10:41:26.0987 0776 \Device\Harddisk0\DR0\Partition0 - ok
10:41:26.0998 0776 Boot (0x1200) (09a77c5f8ad812e459b3a42f3ecdcf8a) \Device\Harddisk0\DR0\Partition1
10:41:26.0999 0776 \Device\Harddisk0\DR0\Partition1 - ok
10:41:27.0003 0776 Boot (0x1200) (0625a70a00f394f661bc6cf8cb93c1ed) \Device\Harddisk1\DR1\Partition0
10:41:27.0004 0776 \Device\Harddisk1\DR1\Partition0 - ok
10:41:27.0006 0776 ============================================================
10:41:27.0006 0776 Scan finished
10:41:27.0006 0776 ============================================================
10:41:27.0018 3660 Detected object count: 0
10:41:27.0018 3660 Actual detected object count: 0

aswMBR log

aswMBR version 0.9.9.1297 Copyright© 2011 AVAST Software
Run date: 2012-01-22 10:43:27
-----------------------------
10:43:27.036 OS Version: Windows x64 6.1.7601 Service Pack 1
10:43:27.036 Number of processors: 4 586 0x170A
10:43:27.037 ComputerName: TWILINK-PC UserName: Twilink
10:43:31.466 Initialize success
10:45:24.847 AVAST engine defs: 12012200
10:45:29.117 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
10:45:29.120 Disk 0 Vendor: ST375052 CC44 Size: 715404MB BusType: 8
10:45:29.122 Disk 1 \Device\Harddisk1\DR1 -> \Device\0000007c
10:45:29.124 Disk 1 Vendor: Size: 715404MB BusType: 0
10:45:29.134 Disk 0 MBR read successfully
10:45:29.137 Disk 0 MBR scan
10:45:29.143 Disk 0 Windows 7 default MBR code
10:45:29.148 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15360 MB offset 2048
10:45:29.164 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 31459328
10:45:29.177 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 699942 MB offset 31664128
10:45:29.182 Service scanning
10:45:30.260 Modules scanning
10:45:30.266 Disk 0 trace - called modules:
10:45:30.607 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
10:45:30.612 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008969060]
10:45:30.617 3 CLASSPNP.SYS[fffff8800185143f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa8007708050]
10:45:34.280 AVAST engine scan C:\Windows
10:45:36.634 AVAST engine scan C:\Windows\system32
10:47:10.097 AVAST engine scan C:\Windows\system32\drivers
10:47:19.928 AVAST engine scan C:\Users\Twilink
10:52:23.671 File: C:\Users\Twilink\AppData\Roaming\MSNP6.dll **INFECTED** Win32:Diller-C [Trj]
10:56:14.056 AVAST engine scan C:\ProgramData
10:58:12.510 Scan finished successfully
10:59:23.677 Disk 0 MBR has been saved successfully to "C:\Users\Twilink\Documents\MBR.dat"
10:59:23.682 The log file has been saved successfully to "C:\Users\Twilink\Documents\aswMBR.txt"

#4 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:30 AM

Posted 22 January 2012 - 11:11 AM

Download malwarebytes

http://www.malwarebytes.org/

Install it,update and run a full scan

Post the logs here

#5 Twilink

Twilink
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 22 January 2012 - 11:52 AM

Malwarebytes Anti-Malware (Trial) 1.60.0.1800
www.malwarebytes.org

Database version: v2012.01.22.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 9.0.8112.16421
Twilink :: TWILINK-PC [administrator]

Protection: Enabled

22/01/2012 11:12:15 AM
mbam-log-2012-01-22 (11-12-15).txt

Scan type: Full scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 330053
Time elapsed: 36 minute(s), 46 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

#6 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:30 AM

Posted 22 January 2012 - 12:04 PM

Download

FixTDSS

launch it,restart the PC if asked for

Let me know if finds any infections

Download

ESET online scanner

Install it

Click on START,it should download the virus definitions
When scan gets completed,click on LIST of found threats

Export the list to desktop,copy the contents of the text file in your reply


Go to

https://www.virustotal.com/

Click on choose file

Browse to this path

C:\Users\Twilink\AppData\Roaming\MSNP6.dll

uploade the file,Click on Scan it


Post the generated link here

Edited by narenxp, 22 January 2012 - 12:06 PM.


#7 Twilink

Twilink
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 22 January 2012 - 05:02 PM

FixTDSS

No infections were found

ESET

C:\Users\Twilink\AppData\Local\Temp\mediaget_installer.exe a variant of Win32/Toolbar.Babylon application deleted - quarantined
C:\Users\Twilink\AppData\Local\Temp\Update_5863.exe a variant of Win32/MessengerPlus application cleaned by deleting - quarantined
C:\Users\Twilink\AppData\Local\Temp\Update_9423.exe a variant of Win32/MessengerPlus.A application deleted - quarantined
C:\Users\Twilink\Downloads\Setup-MsgPlus-500.exe a variant of Win32/MessengerPlus.A application deleted - quarantined
C:\Users\Twilink\Downloads\SoftonicDownloader_pour_messenger-plus.exe a variant of Win32/SoftonicDownloader.A application cleaned by deleting - quarantined
Operating memory probably a variant of Win32/Ponmocup.AA trojan

Virustotal

Here

#8 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:30 AM

Posted 22 January 2012 - 07:12 PM

Launch malwarebytes

Click on MORE TOOLS

Click Run tool

Browse to this path

C:\Users\Twilink\AppData\Roaming\MSNP6.dll

Select the file and click ok

Restart the PC and paste the new ASWMBR log

Download

http://www.majorgeeks.com/GooredFix_d7057.html

Right click-run as administrator

After the scan gets completed and text file will get generated,post the results here

Let me know if you still face redirects

Good luck

#9 Twilink

Twilink
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 22 January 2012 - 07:53 PM

ASWMBR

aswMBR version 0.9.9.1297 Copyright© 2011 AVAST Software
Run date: 2012-01-22 19:14:47
-----------------------------
19:14:47.128 OS Version: Windows x64 6.1.7601 Service Pack 1
19:14:47.128 Number of processors: 4 586 0x170A
19:14:47.129 ComputerName: TWILINK-PC UserName: Twilink
19:14:48.529 Initialize success
19:14:53.660 AVAST engine defs: 12012200
19:15:01.368 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\Ide\IAAStorageDevice-1
19:15:01.371 Disk 0 Vendor: ST375052 CC44 Size: 715404MB BusType: 8
19:15:01.385 Disk 0 MBR read successfully
19:15:01.387 Disk 0 MBR scan
19:15:01.404 Disk 0 Windows 7 default MBR code
19:15:01.416 Disk 0 Partition 1 00 27 Hidden NTFS WinRE NTFS 15360 MB offset 2048
19:15:01.431 Disk 0 Partition 2 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 31459328
19:15:01.444 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 699942 MB offset 31664128
19:15:01.450 Service scanning
19:15:03.330 Modules scanning
19:15:03.333 Disk 0 trace - called modules:
19:15:03.349 ntoskrnl.exe CLASSPNP.SYS disk.sys iaStor.sys hal.dll
19:15:03.352 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8008948060]
19:15:03.694 3 CLASSPNP.SYS[fffff88001b8843f] -> nt!IofCallDriver -> \Device\Ide\IAAStorageDevice-1[0xfffffa80076ef050]
19:15:09.612 AVAST engine scan C:\Windows
19:15:11.575 AVAST engine scan C:\Windows\system32
19:16:59.355 AVAST engine scan C:\Windows\system32\drivers
19:17:08.815 AVAST engine scan C:\Users\Twilink
19:28:45.653 AVAST engine scan C:\ProgramData
19:32:25.162 Scan finished successfully
19:40:51.753 Disk 0 MBR has been saved successfully to "C:\Users\Twilink\Desktop\MBR.dat"
19:40:51.759 The log file has been saved successfully to "C:\Users\Twilink\Desktop\aswMBR.txt"

GooredFix

GooredFix by jpshortstuff (03.07.10.1)
Log created at 19:44 on 22/01/2012 (Twilink)
Firefox version 9.0.1 (en-US)

========== GooredScan ==========

(none)

========== GooredLog ==========

C:\Program Files (x86)\Mozilla Firefox\extensions\
{82AF8DCA-6DE9-405D-BD5E-43525BDAD38A} [02:37 07/07/2011]
{972ce4c6-7e08-4474-a285-3208198ce6fd} [21:14 07/10/2011]

C:\Users\Twilink\Application Data\Mozilla\Firefox\Profiles\zstuzs1o.default\extensions\
(none)

[HKEY_LOCAL_MACHINE\Software\Mozilla\Firefox\Extensions]
"{000a9d1c-beef-4f90-9363-039d445309b8}"="C:\Program Files (x86)\Google\Google Gears\Firefox\" [15:42 06/03/2010]
"{1E73965B-8B48-48be-9C8D-68B920ABC1C4}"="C:\Program Files (x86)\AVG\AVG2012\Firefox4\" [13:22 14/10/2011]

-=E.O.F=-

Thanks a ton! Got rid of the redirect issue! :) Only thing is that there's a "There was a problem starting MSNP6.dll. The specified module could not be found." message that shows up each time I start up the computer...

#10 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:30 AM

Posted 22 January 2012 - 08:00 PM

Press Windows+R key and type

msconfig and click ok

CLick on startup tab

Do you find entries of msnp6.dll?

On right side,you should find its registry entry

If it looks like this

HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Run

if the registry entry looks different,let me know

Press Windows+R key and type

regedit and click ok

You can browse to this path and delete this specific entry.

Good luck

#11 Twilink

Twilink
  • Topic Starter

  • Members
  • 6 posts
  • OFFLINE
  •  
  • Local time:03:30 AM

Posted 22 January 2012 - 08:14 PM

Found it! Works perfectly fine! Thanks for your help! :)

#12 narenxp

narenxp

  • BC Advisor
  • 16,371 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:India
  • Local time:03:30 AM

Posted 22 January 2012 - 08:18 PM

:thumbsup:

Download

TFC

Launch it,it will close all running programs

click on START,it should ask for reboot

Turn off your system restore,restart the PC,create a new restore point

http://windows.microsoft.com/en-US/windows7/Turn-System-Restore-on-or-off


Update your antivirus frequently,do not click on suspicious links

Safe surfing :)




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users